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PURPOSE: To prevent an increase in memory by 
providing a program for cipher between a center and each 
terminal and making ciphering of data executable if a 
key is given. 

CONSTITUTION: This system is constituted of a center 
101 and plural terminals 102, 103.... The user of each 
terminal sends a ciphered key ECi(K) obtained by 
ciphering a key K with the code Ci held by the user to 
the center 101 together with the identifying information 
(IDi) of the user and the center 101 produces the code 
C-|. by converting the received information IDi by 
performing prefixed specific conversion and decodes the 
ciphered key ECi (K) so as to obtain the key K. Then 
the center 101 sends the ciphered key ECi(K) produced 
by ciphering the key K by using the code Ci obtained by 
performing prefixed specifiic conversion on the 
identifying information ID-i to the terminal and, on the 
terminal side, when the user decodes the received 
ciphered key ECi(K) by using the code C^ held by the 
user in advance and obtains the key K. Therefore, it is 
not necessary to increase the number of memories to be 
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SPECIFICATION 

Title of the Invention 

Key distribtion system 
Scope of Claim for a Patent 

A key distribution system for distributing a key used" 
for cryptography between a center and a plurality of 
terminals in a network composed of the center and terminals, 
characterized in that the user side of the terminal sends 
both E^i(K) which is obtained by encrypting a key K by using 
a code C^ owned by the user and the user's identification 
information ID^ to the center, which produces the code by 
converting the received ID^ by a predetermined specific 
conversion and decrypts the received E^i(K) using the code C^ 
thereby to obtain the key K, the center side sends the E^i{K) 
to the terminal which E^i(K) is obtained by encrypting the 
key K by using the obtained by converting the 
identification information ID^ of the user with a 
predetermined specific conversion, and said terminal obtains 
the key K by decrypting the received E^i(K) using the code Ci 
held in advance by the user. 
Detailed Description of the Invention 
[Industrial Field of Utilization] 

The present invention relates to a key distribution 
system for generating and distributing a key used for 
cryptography . 
[Prior Art] 
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In a conventional key distribution system of a 
centralized network, it is widely used that a center holds a 
key encryption key for each user, and a data encryption key 
is distributed by being encrypted using this key encryption 
key. In this case, it is enough for each user to hold only 
his key encryption key but not the key encryption keys of 
other users. 

[Problem to be Solved by the Invention] 

In the system described above, the center is required to 
have the key encryption keys for all the users and therefore 
the memory capacity increases with the number of users. 
Another problem is that each time a new user joins the 
system, a key encryption key for his/her terminal is required 
to be added. 

[Means for Solving the Problem] 

According to this invention, there is provided a key 
distribution system for distributing a key used for 
cryptography between a center and a plurality of terminals in 
a network composed of the center and terminals, the system 
being so configured that the user side of the terminal sends 
both E^i(K) which is obtained by encrypting a key K by using 
a code owned by him and his identification information ID^ 
to the center, which produces the code Ci by converting the 
received ID^ by a predetermined specific conversion and 
decrypts the received Eci(K) using the code thereby to 
obtain the key K, the center side sends the Eci(K) to the 
terminal which Egi(K) is obtained by encrypting the key K by 
using the obtained by converting the identification 
information ID^ of the user with a predetermined specific 
conversion, and said terminal obtains the key K by decrypting 
the received Eci(K) using the code held in advance by the 
user . 

[Embodiments] 

An embodiment of the present . invention will be explained 
below with reference to the drawings. 

Fig. 3 is a diagram showing a configuration of an 
example of a system to which the invention is applicable. 
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This system constitutes a network comprising a center 101 and 
a plurality of terminals 102, 103, and so on. The network 
is, for example, a computer network or a personal computer 
communication system. The center and each terminal have an 
encryption program, and if supplied with a key, can encrypt 
data or the like. The encryption program is, for example, 
the Data Encryption Standard established by U.S. DEPARTMENT 
OF COMMERCE, National Bureau of Standards (hereinafter 
referred to as DES ) . 

Figs. 1 and 2 are flowcharts showing an embodiment of 
the invention. Fig. 1(a) shows the flow of encryption 
process at a terminal, in which a key is generated at the 
terminal and sent to the center. Fig. 1(b) shows the flow of 
decryption process in which the key is decrypted at the 
center. Fig. 2(a) shows the flow of encryption process at the 
center, in which a key is generated at the center and sent ' to 
a given terminal, and Fig. 2(b) shows the flow of decryption 
process in which the key is decrypted at a terminal. A 
common digital pattern is set as a key for the transmission 
side (from a terminal to the center) and the receiving side 
(from the center to a terminal). Each user is supplied with 
a key encryption key from the center or a network 
management organization. Assuming that the identification 
information of a user i is ID^, is given as 

K, = f(IDJ 

where f is the function known only to the center and the 
management organization. Also, using, for example, the DES 
and the confidential code MK, the key encryption key is 
expressed as, 

K, = DES^(IDJ 

where DESj^ designates the conversion by DES using MK as a 
key. Any other confidential function than DES can be used. 

In Fig. 1(a), when a key generation program of a 
terminal is started, WK randomly selected is used as a key 
(step ®), this WK is encrypted by the key encryption key Ki 
input by the user to obtain EWK = Ej^ (WK) (step ®) , and EWK 
is sent together with the identification information ID^ of 
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the user to the center (step (D) . At the center, a key 
encryption key is prepared from ID^ (step ®), and a key WK 
is produced by decrypting EWK (step (D) in the manner shown 
in Fig. 1(b), where Ek(x) and Dk(x) indicate that x is 
encrypted and decrypted, respectively, with key K. For 
example, DES can be used in this process. 

In Fig, 2(a), the center generates a key WK at random 
(step (D), and based on the identification information IDi of 
the transmitting party, generates a key encryption key = 
f(IDi) (step O), encrypts the key WK using the key encryption 
key Ki thereby to obtain EWK = EKi(WK) (step (D), and sends 
this EWK to the terminal (step <D). At the terminal, as 
shown in Fig, 2(b), upon receipt of the encryption key EWK, 
decrypts it by the key encryption key K^ input by the user 
thereby to obtain WK (step ®) . 

In the embodiment described above, the process of 
encryption and conversion f is carried out by software using 
DES. Nevertheless, the same process can be carried out by 
hardware. Also, the address of a terminal but not the user 
identification information can be used as IDi. 
[Effects of the Invention] 

As explained in detail above, according to this 
invention, the memory capacity of the center can be small and 
a key can be easily distributed as no change is required when 
a new user joins the system. 
Brief Description of the Drawings 

Figs. 1 and 2 are flowcharts showing the process flow 
according to an embodiment of this invention from terminals 
to the center and from the center to terminals, respectively, 
and Fig. 3 is a diagram showing a configuration of an example 
of a system to which the invention is applicable. 
101 .Center , 102, 103 .Terminals 
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